GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,883
Composer 5,065
Erlang 39
GitHub Actions 38
Go 2,700
Maven 6,139
npm 4,328
NuGet 761
pip 4,100
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,799

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

191 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive... High Unreviewed

CVE-2024-8176 was published Mar 14, 2025

Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service (deep... High Unreviewed

CVE-2016-4425 was published May 17, 2022

MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via... High Unreviewed

CVE-2020-28196 was published May 24, 2022

Uncontrolled recursion in the json2pb component in Apache bRPC (version < 1.15.0) on all... High Unreviewed

CVE-2025-59789 was published Dec 1, 2025

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix stack... Moderate Unreviewed

CVE-2025-39704 was published Sep 5, 2025

IBM Concert 1.0.0 through 2.0.0 could allow a local user with specific permission to obtain... Moderate Unreviewed

CVE-2025-36158 was published Nov 21, 2025

In the Linux kernel, the following vulnerability has been resolved: tracing/osnoise: Fix crash... Moderate Unreviewed

CVE-2025-38493 was published Jul 28, 2025

In the Linux kernel, the following vulnerability has been resolved: powerpc/perf: Optimize... Moderate Unreviewed

CVE-2022-50118 was published Jun 18, 2025

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: Check... Moderate Unreviewed

CVE-2025-38315 was published Jul 10, 2025

In the Linux kernel, the following vulnerability has been resolved: fbdev: omapfb: Add 'plane'... Moderate Unreviewed

CVE-2025-37851 was published May 9, 2025

In the Linux kernel, the following vulnerability has been resolved: perf: Improve missing... Moderate Unreviewed

CVE-2022-49782 was published May 1, 2025

GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of... High Unreviewed

CVE-2024-0208 was published Jan 3, 2024

DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or... High Unreviewed

CVE-2024-0211 was published Jan 3, 2024

CBOR dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or... High Unreviewed

CVE-2023-4512 was published Aug 24, 2023

The SingleDocParser::HandleFlowSequence function in yaml-cpp (aka LibYaml-C++) 0.6.2 allows... Moderate Unreviewed

CVE-2019-6285 was published May 13, 2022

Uncontrolled recursion in XPath evaluation in libxml2 up to and including version 2.9.14 allows a... Moderate Unreviewed

CVE-2025-9714 was published Sep 10, 2025

A stack consumption issue in sqfs_size in Das U-Boot before 2025.01-rc1 occurs via a crafted... Low Unreviewed

CVE-2024-57257 was published Feb 19, 2025

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Check for any... Moderate Unreviewed

CVE-2023-52986 was published Mar 27, 2025

Uncontrolled recursion in Reader.Read in compress/gzip before Go 1.17.12 and Go 1.18.4 allows an... High Unreviewed

CVE-2022-30631 was published Aug 11, 2022

In Xpdf 4.05 (and earlier), a PDF object loop in a CMap, via the "UseCMap" entry, leads to... Low Unreviewed

CVE-2025-11896 was published Oct 17, 2025

When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured with a JSON content... High Unreviewed

CVE-2025-54858 was published Oct 15, 2025

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an... Moderate Unreviewed

CVE-2025-33096 was published Oct 12, 2025

When the module renders a Svg file that contains a <pattern> element, it might end up rendering... Critical Unreviewed

CVE-2025-10728 was published Oct 3, 2025

Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply... Moderate Unreviewed

CVE-2025-43718 was published Oct 1, 2025

In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Book3S HV: Fix... High Unreviewed

CVE-2021-47465 was published May 22, 2024

Previous1…8 Next

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

191 advisories